e4b3498463979e9cfd4e8d1eed416bea_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e4b3498463979e9cfd4e8d1eed416bea_JaffaCakes118
Size

149KB
MD5

e4b3498463979e9cfd4e8d1eed416bea
SHA1

f897ec234c27e77699d242259b1c64960d768c1b
SHA256

e706ca4684b04d76fe280e5500278b017e40b886aec30f78805e9c2d7ed6c3f9
SHA512

9ae4e46d7fa616f1f05de3868f6c3d2b92dc85887538ab1258bf25093edd7f1d49a27fafeb3da83fb07248ef31e989a13a9fef6ec6c9d1faa0e62a21461a735d
SSDEEP

3072:HLvZc40wtHrF2AJY3kNNQo4FufYHPyqmrr+4Kd49hO:HL6uuAJmUAufYve/kO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e4b3498463979e9cfd4e8d1eed416bea_JaffaCakes118

Files

e4b3498463979e9cfd4e8d1eed416bea_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5cbb5f127445e51a694c1f2c9823315c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
GetProcAddress
CreateFileA

user32

LoadIconA
CreateWindowExA
ShowWindow
UpdateWindow
RegisterClassExA
LoadCursorA

gdi32

GetStockObject

advapi32

RegOpenKeyW

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.4444412
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.4444411
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.4444410
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444449
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444448
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444447
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444446
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444445
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444444
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444443
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444442
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.441441
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.444441
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.344446
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.344445
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.344444
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.344443
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.344442
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.344441
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.443441
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.442441
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.341441
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 726B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5cbb5f127445e51a694c1f2c9823315c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 512B - Virtual size: 444B

.data Size: 1024B - Virtual size: 816B

.4444412 Size: 512B - Virtual size: 100B

.4444411 Size: 512B - Virtual size: 100B

.4444410 Size: 512B - Virtual size: 100B

.444449 Size: 512B - Virtual size: 100B

.444448 Size: 512B - Virtual size: 100B

.444447 Size: 512B - Virtual size: 100B

.444446 Size: 512B - Virtual size: 100B

.444445 Size: 512B - Virtual size: 100B

.444444 Size: 512B - Virtual size: 100B

.444443 Size: 512B - Virtual size: 100B

.444442 Size: 512B - Virtual size: 100B

.441441 Size: 512B - Virtual size: 200B

.444441 Size: 512B - Virtual size: 100B

.344446 Size: 512B - Virtual size: 100B

.344445 Size: 512B - Virtual size: 100B

.344444 Size: 512B - Virtual size: 100B

.344443 Size: 512B - Virtual size: 100B

.344442 Size: 512B - Virtual size: 100B

.344441 Size: 512B - Virtual size: 100B

.443441 Size: 95KB - Virtual size: 94KB

.442441 Size: 512B - Virtual size: 100B

.341441 Size: 512B - Virtual size: 100B

.rsrc Size: 25KB - Virtual size: 24KB

.reloc Size: 1024B - Virtual size: 726B

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 512B - Virtual size: 444B

.data
Size: 1024B - Virtual size: 816B

.4444412
Size: 512B - Virtual size: 100B

.4444411
Size: 512B - Virtual size: 100B

.4444410
Size: 512B - Virtual size: 100B

.444449
Size: 512B - Virtual size: 100B

.444448
Size: 512B - Virtual size: 100B

.444447
Size: 512B - Virtual size: 100B

.444446
Size: 512B - Virtual size: 100B

.444445
Size: 512B - Virtual size: 100B

.444444
Size: 512B - Virtual size: 100B

.444443
Size: 512B - Virtual size: 100B

.444442
Size: 512B - Virtual size: 100B

.441441
Size: 512B - Virtual size: 200B

.444441
Size: 512B - Virtual size: 100B

.344446
Size: 512B - Virtual size: 100B

.344445
Size: 512B - Virtual size: 100B

.344444
Size: 512B - Virtual size: 100B

.344443
Size: 512B - Virtual size: 100B

.344442
Size: 512B - Virtual size: 100B

.344441
Size: 512B - Virtual size: 100B

.443441
Size: 95KB - Virtual size: 94KB

.442441
Size: 512B - Virtual size: 100B

.341441
Size: 512B - Virtual size: 100B

.rsrc
Size: 25KB - Virtual size: 24KB

.reloc
Size: 1024B - Virtual size: 726B